IOC Report
http://199.59.243.227

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 29 16:48:43 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 29 16:48:43 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 29 16:48:42 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 29 16:48:43 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 29 16:48:42 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 171
ASCII text, with very long lines (3533)
dropped
Chrome Cache Entry: 172
Web Open Font Format (Version 2), TrueType, length 91860, version 1.0
downloaded
Chrome Cache Entry: 173
ASCII text, with very long lines (5945)
dropped
Chrome Cache Entry: 174
ASCII text, with very long lines (5162), with no line terminators
downloaded
Chrome Cache Entry: 175
HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
downloaded
Chrome Cache Entry: 177
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 178
TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, iconsRegulariconsiconsVersion 1.0iconsGenerated by svg2ttf from Fontello project.http://fontello
downloaded
Chrome Cache Entry: 179
ASCII text
downloaded
Chrome Cache Entry: 181
ASCII text, with very long lines (2667)
downloaded
Chrome Cache Entry: 184
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x50, components 3
downloaded
Chrome Cache Entry: 186
Web Open Font Format (Version 2), TrueType, length 88480, version 1.0
downloaded
Chrome Cache Entry: 187
Web Open Font Format (Version 2), TrueType, length 50012, version 1.0
downloaded
Chrome Cache Entry: 189
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 196
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 197
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 198
ASCII text, with very long lines (2287)
downloaded
Chrome Cache Entry: 200
HTML document, Unicode text, UTF-8 text, with very long lines (47512)
downloaded
Chrome Cache Entry: 202
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x11, components 3
downloaded
Chrome Cache Entry: 203
Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
downloaded
Chrome Cache Entry: 206
ASCII text, with very long lines (2963)
downloaded
Chrome Cache Entry: 207
Web Open Font Format (Version 2), TrueType, length 87844, version 1.0
downloaded
Chrome Cache Entry: 209
C++ source, ASCII text, with very long lines (2873)
downloaded
Chrome Cache Entry: 212
ASCII text, with very long lines (4088)
downloaded
Chrome Cache Entry: 214
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
downloaded
Chrome Cache Entry: 216
GIF image data, version 89a, 1 x 1
dropped
Chrome Cache Entry: 217
ASCII text, with very long lines (1055)
dropped
Chrome Cache Entry: 219
Web Open Font Format, TrueType, length 14924, version 1.0
downloaded
Chrome Cache Entry: 220
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3
dropped
Chrome Cache Entry: 221
ASCII text, with very long lines (3835)
dropped
Chrome Cache Entry: 223
Web Open Font Format (Version 2), TrueType, length 92204, version 1.0
downloaded
Chrome Cache Entry: 226
ASCII text, with very long lines (2575)
dropped
Chrome Cache Entry: 227
ASCII text, with very long lines (1999)
downloaded
Chrome Cache Entry: 228
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
downloaded
Chrome Cache Entry: 229
ASCII text, with very long lines (1382)
dropped
Chrome Cache Entry: 232
Web Open Font Format (Version 2), TrueType, length 88248, version 1.0
downloaded
Chrome Cache Entry: 234
ASCII text, with very long lines (53623)
dropped
Chrome Cache Entry: 235
ASCII text
downloaded
Chrome Cache Entry: 237
HTML document, ASCII text, with very long lines (31538)
downloaded
Chrome Cache Entry: 240
ASCII text, with very long lines (3857)
dropped
Chrome Cache Entry: 242
GIF image data, version 89a, 13 x 13
dropped
Chrome Cache Entry: 244
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 245
ASCII text, with very long lines (746)
downloaded
Chrome Cache Entry: 246
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 249
Web Open Font Format (Version 2), TrueType, length 15436, version 1.0
downloaded
Chrome Cache Entry: 250
ASCII text, with very long lines (3673)
dropped
Chrome Cache Entry: 251
ASCII text, with very long lines (3857)
dropped
Chrome Cache Entry: 254
ASCII text, with very long lines (782)
downloaded
Chrome Cache Entry: 255
ASCII text, with very long lines (2953)
dropped
Chrome Cache Entry: 256
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3
downloaded
Chrome Cache Entry: 257
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 258
ASCII text, with very long lines (5718), with no line terminators
downloaded
Chrome Cache Entry: 259
ASCII text, with very long lines (685)
downloaded
Chrome Cache Entry: 266
Web Open Font Format (Version 2), TrueType, length 88444, version 1.0
downloaded
Chrome Cache Entry: 267
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 268
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 269
ASCII text, with very long lines (15432), with no line terminators
downloaded
Chrome Cache Entry: 270
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3
downloaded
Chrome Cache Entry: 273
ASCII text, with very long lines (2343)
dropped
Chrome Cache Entry: 275
ASCII text, with very long lines (2474)
downloaded
Chrome Cache Entry: 279
RIFF (little-endian) data, Web/P image
downloaded
Chrome Cache Entry: 280
ASCII text, with very long lines (65531)
downloaded
Chrome Cache Entry: 285
Web Open Font Format (Version 2), TrueType, length 24652, version 1.0
downloaded
Chrome Cache Entry: 286
ASCII text, with very long lines (2015)
downloaded
Chrome Cache Entry: 287
ASCII text, with very long lines (1302)
downloaded
Chrome Cache Entry: 289
Unicode text, UTF-8 text, with very long lines (43167), with no line terminators
dropped
Chrome Cache Entry: 292
ASCII text, with very long lines (4158)
dropped
Chrome Cache Entry: 293
Web Open Font Format (Version 2), TrueType, length 50604, version 1.0
downloaded
Chrome Cache Entry: 296
ASCII text
dropped
Chrome Cache Entry: 297
Web Open Font Format (Version 2), TrueType, length 12220, version 1.0
downloaded
Chrome Cache Entry: 299
PNG image data, 32 x 32, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 304
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 306
ASCII text, with very long lines (3672)
downloaded
Chrome Cache Entry: 308
ASCII text, with very long lines (4047), with no line terminators
downloaded
Chrome Cache Entry: 310
ASCII text, with very long lines (3835)
downloaded
Chrome Cache Entry: 312
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
downloaded
Chrome Cache Entry: 313
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 314
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 599x314, components 3
downloaded
Chrome Cache Entry: 317
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
dropped
Chrome Cache Entry: 318
GIF image data, version 89a, 200 x 600
dropped
Chrome Cache Entry: 319
ASCII text
downloaded
Chrome Cache Entry: 320
C++ source, ASCII text, with very long lines (2015)
dropped
Chrome Cache Entry: 322
GIF image data, version 89a, 1 x 1
downloaded
Chrome Cache Entry: 324
ASCII text, with very long lines (786)
downloaded
Chrome Cache Entry: 325
HTML document, ASCII text, with very long lines (829), with no line terminators
downloaded
Chrome Cache Entry: 329
ASCII text, with very long lines (1572)
downloaded
Chrome Cache Entry: 330
HTML document, ASCII text, with very long lines (2176)
downloaded
Chrome Cache Entry: 331
ASCII text, with very long lines (2200)
dropped
Chrome Cache Entry: 332
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 333
Web Open Font Format (Version 2), TrueType, length 44960, version 1.0
downloaded
Chrome Cache Entry: 334
Web Open Font Format (Version 2), TrueType, length 18596, version 1.0
downloaded
Chrome Cache Entry: 335
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 337
XML 1.0 document, ASCII text, with very long lines (23404)
downloaded
Chrome Cache Entry: 338
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 340
HTML document, ASCII text, with very long lines (2008)
downloaded
Chrome Cache Entry: 341
ASCII text, with very long lines (2586)
downloaded
Chrome Cache Entry: 342
RIFF (little-endian) data, Web/P image
dropped
Chrome Cache Entry: 343
ASCII text, with very long lines (2093)
dropped
Chrome Cache Entry: 344
ISO Media, MP4 v2 [ISO 14496-14]
downloaded
Chrome Cache Entry: 345
ASCII text, with very long lines (5945)
downloaded
Chrome Cache Entry: 346
JSON data
dropped
Chrome Cache Entry: 349
Web Open Font Format (Version 2), TrueType, length 50348, version 1.0
downloaded
Chrome Cache Entry: 350
ASCII text, with very long lines (53493)
dropped
Chrome Cache Entry: 351
PNG image data, 64 x 64, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 353
ASCII text, with very long lines (625)
dropped
Chrome Cache Entry: 354
XML 1.0 document, ASCII text, with very long lines (23560)
dropped
Chrome Cache Entry: 355
JSON data
downloaded
Chrome Cache Entry: 356
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
downloaded
Chrome Cache Entry: 357
PNG image data, 59 x 64, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 358
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 360
HTML document, Unicode text, UTF-8 text, with very long lines (47512)
dropped
Chrome Cache Entry: 361
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 363
HTML document, ASCII text, with very long lines (436), with no line terminators
downloaded
Chrome Cache Entry: 364
PNG image data, 64 x 64, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 366
Web Open Font Format, TrueType, length 132228, version 0.0
downloaded
Chrome Cache Entry: 368
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 369
ASCII text, with very long lines (3557)
downloaded
Chrome Cache Entry: 370
ASCII text
downloaded
Chrome Cache Entry: 371
HTML document, ASCII text, with very long lines (634)
downloaded
Chrome Cache Entry: 375
HTML document, ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 376
HTML document, ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 378
GIF image data, version 89a, 200 x 600
dropped
Chrome Cache Entry: 379
Web Open Font Format, TrueType, length 131976, version 0.0
downloaded
Chrome Cache Entry: 382
HTML document, ASCII text
downloaded
There are 120 hidden files, click here to show them.

URLs

Name
IP
Malicious
http://199.59.243.227
malicious
http://199.59.243.227/
199.59.243.227
 malicious
https://2ip.io/domain-list-by-ip/
malicious
https://www.google.com/search?q=websites+sitting+on+an+ip&oq=websites+sitting+on+an+ip&gs_lcrp=EgZjaHJvbWUyBggAEEUYOTIHCAEQIRigATIHCAIQIRigATIHCAMQIRigATIHCAQQIRigATIHCAUQIRigATIHCAYQIRirAtIBCTExMzA1ajBqN6gCALACAA&sourceid=chrome&ie=UTF-8
https://2ip.io/domain-list-by-ip/199.59.243.227/

Domains

Name
IP
Malicious
2ip.io
188.40.167.81
 malicious
um.simpli.fi
35.204.74.118
tr.blismedia.com
34.96.105.8
www.googletagservices.com
142.250.184.226
global.px.quantserve.com
91.228.74.166
bid.g.doubleclick.net
66.102.1.154
user-data-eu.bidswitch.net
35.214.136.108
dsp.adkernel.com
174.137.133.49
stats.g.doubleclick.net
108.177.15.156
cdn.w55c.net
18.158.174.8
tunnel.googlezip.net
216.239.34.157
widget.nl3.vip.prod.criteo.com
178.250.1.9
an.yandex.ru
87.250.250.90
id.google.com
173.194.78.94
cm.g.doubleclick.net
142.250.184.226
www.google.com
142.250.184.228
gcdn.2mdn.net
142.250.184.206
sync.srv.stackadapt.com
3.210.226.4
match.adsrvr.org
52.223.40.198
dsp-cookie.adfarm1.adition.com
80.82.210.217
creativecdn.com
185.184.8.90
plus.l.google.com
142.250.184.238
ep1.adtrafficquality.google
216.58.212.162
gw-c-eu-isp.temu.com
20.157.217.118
tag-terraform-elb-1705565586.eu-central-1.elb.amazonaws.com
18.193.20.35
ep2.adtrafficquality.google
142.250.186.161
gtrace.mediago.io
35.214.168.80
r5.sn-a5meknzk.c.2mdn.net
74.125.157.74
analytics-alv.google.com
216.239.34.181
play.google.com
142.250.184.206
googleads.g.doubleclick.net
142.250.184.194
www3.l.google.com
172.217.16.206
outspot2-ams.adx.opera.com
82.145.213.8
dns-tunnel-check.googlezip.net
216.239.34.159
onetag-sys.com
51.75.86.98
td.doubleclick.net
172.217.16.194
widget.us5.vip.prod.criteo.com
74.119.117.16
t.adx.opera.com
unknown
pm.w55c.net
unknown
fundingchoicesmessages.google.com
unknown
d.agkn.com
unknown
www.temu.com
unknown
dis.criteo.com
unknown
widget.us.criteo.com
unknown
r5---sn-a5meknzk.c.2mdn.net
unknown
x.bidswitch.net
unknown
c1.adform.net
unknown
analytics.pangle-ads.com
unknown
px.ads.linkedin.com
unknown
cms.quantserve.com
unknown
analytics.google.com
unknown
apis.google.com
unknown
dclk-match.dotomi.com
unknown
There are 43 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
199.59.243.227
unknown
United States
malicious
188.40.167.81
2ip.io
Germany
malicious
173.194.76.157
unknown
United States
108.177.15.156
stats.g.doubleclick.net
United States
91.228.74.166
global.px.quantserve.com
United Kingdom
216.239.34.181
analytics-alv.google.com
United States
142.250.185.226
unknown
United States
142.250.185.227
unknown
United States
142.250.185.225
unknown
United States
66.102.1.154
bid.g.doubleclick.net
United States
142.250.185.142
unknown
United States
142.250.184.225
unknown
United States
142.250.186.110
unknown
United States
142.250.184.226
www.googletagservices.com
United States
142.250.184.228
www.google.com
United States
74.125.157.74
r5.sn-a5meknzk.c.2mdn.net
United States
142.250.186.33
unknown
United States
142.250.206.195
unknown
United States
142.250.184.195
unknown
United States
174.137.133.49
dsp.adkernel.com
United States
142.250.186.34
unknown
United States
173.194.78.94
id.google.com
United States
216.58.206.40
unknown
United States
142.250.184.194
googleads.g.doubleclick.net
United States
172.217.18.4
unknown
United States
89.207.16.204
unknown
Sweden
172.217.18.3
unknown
United States
23.46.150.74
unknown
United States
142.250.185.110
unknown
United States
142.250.185.238
unknown
United States
18.158.174.8
cdn.w55c.net
United States
172.217.18.2
unknown
United States
13.107.42.14
unknown
United States
87.250.250.90
an.yandex.ru
Russian Federation
185.184.8.90
creativecdn.com
Poland
239.255.255.250
unknown
Reserved
142.250.185.194
unknown
United States
142.250.186.142
unknown
United States
80.82.210.217
dsp-cookie.adfarm1.adition.com
Germany
142.250.184.238
plus.l.google.com
United States
172.217.16.194
td.doubleclick.net
United States
216.58.212.162
ep1.adtrafficquality.google
United States
172.217.18.104
unknown
United States
52.223.40.198
match.adsrvr.org
United States
172.217.16.193
unknown
United States
172.217.16.195
unknown
United States
142.250.185.74
unknown
United States
82.145.213.8
outspot2-ams.adx.opera.com
United Kingdom
213.180.204.90
unknown
Russian Federation
142.250.185.78
unknown
United States
18.193.20.35
tag-terraform-elb-1705565586.eu-central-1.elb.amazonaws.com
United States
35.214.136.108
user-data-eu.bidswitch.net
United States
142.250.186.170
unknown
United States
35.204.74.118
um.simpli.fi
United States
216.58.206.78
unknown
United States
192.168.2.16
unknown
unknown
216.58.206.35
unknown
United States
20.157.217.118
gw-c-eu-isp.temu.com
United States
142.250.185.162
unknown
United States
142.250.184.206
gcdn.2mdn.net
United States
142.250.74.195
unknown
United States
142.250.186.99
unknown
United States
34.96.105.8
tr.blismedia.com
United States
142.250.186.98
unknown
United States
3.210.226.4
sync.srv.stackadapt.com
United States
142.250.184.202
unknown
United States
178.250.1.9
widget.nl3.vip.prod.criteo.com
France
172.217.16.202
unknown
United States
74.119.117.16
widget.us5.vip.prod.criteo.com
United States
142.250.186.161
ep2.adtrafficquality.google
United States
172.217.16.206
www3.l.google.com
United States
37.157.4.29
unknown
Denmark
216.58.206.67
unknown
United States
216.58.206.66
unknown
United States
35.214.168.80
gtrace.mediago.io
United States
142.250.181.226
unknown
United States
64.233.167.84
unknown
United States
51.75.86.98
onetag-sys.com
France
216.239.34.157
tunnel.googlezip.net
United States
142.250.185.98
unknown
United States
There are 70 hidden IPs, click here to show them.